2 matches found
CVE-2022-23906
creationtimestamp| type| source ---|---|--- 2022-03-01 02:29:04+00:00| seen| https://t.me/cibsecurity/38236...
CVE-2022-23906
CMS Made Simple 2.2.15 is reported to have a Remote Command Execution (RCE) vulnerability in the avatar upload function, exploitable via a crafted image file. The issue is documented across multiple sources (NVD, Red Hat, CVE lists) with CVSS vectors indicating high impact (C/H/I/H/A/H; CVSS3.1: ...